Make read_vulnerability base permission

d5e7fc5a · Tetiana Chupryna · db697bdb · d5e7fc5a
Commit d5e7fc5a authored Dec 09, 2019 by Tetiana Chupryna
Hide whitespace changes
Inline Side-by-side

Showing with 4 additions and 5 deletions

ee/app/policies/ee/project_policy.rb ee/app/policies/ee/project_policy.rb +4 -5

No files found.
--- a/ee/app/policies/ee/project_policy.rb
+++ b/ee/app/policies/ee/project_policy.rb
@@ -159,10 +159,10 @@ module EE
      rule { can?(:read_build) & can?(:download_code) }.enable :read_security_findings
-      rule { security_dashboard_enabled & can?(:developer_access) }.enable :read_project_security_dashboard
+      rule { security_dashboard_enabled & can?(:developer_access) }.enable :read_vulnerability
-      rule { can?(:read_project_security_dashboard) }.policy do
+      rule { can?(:read_vulnerability) }.policy do
-        enable :read_vulnerability
+        enable :read_project_security_dashboard
        enable :create_vulnerability
        enable :admin_vulnerability
      end
@@ -210,10 +210,9 @@ module EE
        enable :read_environment
        enable :read_deployment
        enable :read_pages
-        enable :read_project_security_dashboard
      end
-      rule { auditor & can?(:read_project_security_dashboard) }.policy do
+      rule { auditor & security_dashboard_enabled }.policy do
        enable :read_vulnerability
      end